Eternity Project: You can pay $260 for a stealer and $490 for a ransomware
Researchers from threat intelligence firm Cyble analyzed the Eternity Project Tor website which offers any kind of malicious code. Researchers...
hacking
May 08 – May 14 Ukraine – Russia the silent cyber conflict
This post provides a timeline of the events related to Russia invasion of Ukraine from the cyber security perspective. Below...
Security Affairs newsletter Round 365 by Pierluigi Paganini
A new round of the weekly Security Affairs newsletter arrived! Every week the best security articles from Security Affairs for...
Ukraine CERT-UA warns of new attacks launched by Russia-linked Armageddon APT
Ukraine Computer Emergency Response Team (CERT-UA) reported a phishing campaign conducted by Armageddon APT using GammaLoad.PS1_v2 malware. Ukraine Computer Emergency...
Sysrv-K, a new variant of the Sysrv botnet includes new exploits
Microsoft reported that the Sysrv botnet is targeting Windows and Linux servers exploiting flaws in the Spring Framework and WordPress. Microsoft Security...
NodeSecurityShield – A Developer And Security Engineer Friendly Package For Securing NodeJS Applications
Features Attack Monitoring Outbound Network Calls Attack Blocking Outbound Network Calls Roadmap Attack Monitoring Command Execution File Calls Attack Blocking...
The LEGION collective calls to action to attack the final of the Eurovision song contest
The Pro-Russian volunteer movement known as LEGION is calling to launch DDoS attacks against the final of the Eurovision song...
OpRussia update: Anonymous breached other organizations
Another week has passed and Anonymous has hacked other Russian companies and leaked their data via DDoSecrets. The #OpRussia launched...
Pro-Russian hacktivists target Italy government websites
Pro-Russian hacker group Killnet targeted the websites of several Italian institutions, including the senate and the National Institute of Health....
BWASP – BoB Web Application Security Project
The BoB Web Application Security Project (BWASP) is an open-source, analysis tool to support for Web Vulnerability Manual Analysis hackers....
SonicWall urges customers to fix SMA 1000 vulnerabilities
SonicWall warns customers to address several high-risk security flaws impacting its Secure Mobile Access (SMA) 1000 Series line of products. SonicWall...
RogueAssemblyHunter – Rogue Assembly Hunter Is A Utility For Discovering ‘Interesting’ .NET CLR Modules In Running Processes
Rogue Assembly Hunter is a utility for discovering 'interesting' .NET CLR modules in running processes. Author: @bohops License: MIT Project:...
Zyxel fixed firewall unauthenticated remote command injection issue
Zyxel addressed a critical flaw affecting Zyxel firewall devices that allows unauthenticated, remote attackers to gain arbitrary code execution. Zyxel...
Process_Overwriting – Yet Another Variant Of Process Hollowing
Process Overwriting is a PE In memory (via Process Hacker): Clone: Use recursive clone to get the repo together with...
Iran-linked COBALT MIRAGE group uses ransomware in its operations
Iranian group used Bitlocker and DiskCryptor in a series of attacks targeting organizations in Israel, the US, Europe, and Australia....
Heyserial – Programmatically Create Hunting Rules For Deserialization Exploitation With Multiple Keywords, Gadget Chains, Object Types, Encodings, And Rule Types
Programmatically create hunting rules for deserialization exploitation with multiple keywords (e.g. cmd.exe) gadget chains (e.g. CommonsCollection) object types (e.g. ViewState,...
New Nerbian RAT spreads via malspam campaigns using COVID-19
Researchers spotted a new remote access trojan, named Nerbian RAT, which implements sophisticated evasion and anti-analysis techniques. Researchers from Proofpoint...
Massive hacking campaign compromised thousands of WordPress websites
Researchers uncovered a massive hacking campaign that compromised thousands of WordPress websites to redirect visitors to scam sites. Cybersecurity researchers...
SSOh-No – User Enumeration And Password Spraying Tool For Testing Azure AD
This tool is designed to enumerate users, password spray and perform brute force attacks against any organisation that utilises Azure...
Red TIM Research (RTR) founds 2 bugs affecting F5 Traffix SDC
Experts at TIM research laboratory, Red Team Research (RTR), have disclosed a couple of bugs affecting F5 Traffix SDC. Among...
Five Eyes agencies warn of attacks on MSPs
Cybersecurity authorities from Five Eye warn of threats targeting managed service providers (MSPs) and potential supply chain attacks through them....
CISA adds CVE-2022-1388 flaw in F5 BIG-IP to its Known Exploited Vulnerabilities Catalog
US Critical Infrastructure Security Agency (CISA) adds critical CVE-2022-1388 flaw in F5 BIG-IP products to its Known Exploited Vulnerabilities Catalog....
DuplicateDump – Dumping LSASS With A Duplicated Handle From Custom LSA Plugin
DuplicateDump is a fork of MirrorDump with following modifications: DInovke implementation LSA plugin DLL written in C++ which could be...
Kubeclarity – Tool For Detection And Management Of Software Bill Of Materials (SBOM) And Vulnerabilities Of Container Images And Filesystems
KubeClarity is a tool for detection and management of Software Bill Of Materials (SBOM) and Features Dashboard Fixable vulnerabilities per...
